CLAIMS 



1 1. A method of validating a message encoded according to a network 

2 protocol, the message including a plurality of subcomponents an-anged in a 

3 hierarchy, the method comprising: 

4 receiving the message at a node in a network, wherein the network is 

5 operative to communicate via the protocol; 

6 recursively validating each subcomponent of the plurality of 

7 subcomponents, recursively validating each subcomponent further including 

8 determining an aging limit for each of the plurality of subcomponents, 

9 determining a sequential identifier for each of the plurality of 
10 subcomponents, 

' 1 1 determining a wrap-around count for the subcomponent, and 

12 for each of the plurality of subcomponents, comparing the sequential 

13 identifier to wrap count for the subcomponent, and the aging limit to a current 

14 time. 

1 2. The method of claim 1 , further comprising: 

2 if, for a subcomponent of the plurality of subcomponents, the cun-ent time 

3 exceeds the aging limit and the if the sequential identifier is less than the wrap 

4 count, flagging the subcomponent as exceeding the age limit. 

1 3. The method of claim 2, further comprising: 

2 upon flagging the subcomponent, indicating the flagging to a security 

3 daemon of the network protocol. 

1 4. The method of claim 1 , further comprising: 

2 determining if the subcomponent has been retransmitted. 

1 5. The method of claim 1 , wherein the network protocol is a routing protocol. 
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1 6. The method of claim 5, wherein the routing protocol is an Exterior Gateway 

2 Protocol (EGP). 

1 7. The method of claim 6, wherein the EGP is a path vector protocol. 

1 8. The method of claim 7, wherein the path vector protocol is a version of 

2 Border Gateway Protocol. 

1 9. The method of claim 5, wherein the routing protocol is a link state protocol. 

1 10. The method of claim 9, wherein the link state protocol is Open Shortest 

2 Path First (OSPF). 

1 11. The method of claim 9, wherein the link state protocol is IS-IS. 

1 12. A method of processing a network component at a first node in an inter- 

2 network, the network component representing a block of information encoded in a 

3 protocol and transmitted through the inter-network, the method comprising: 

4 communicating the network component to the first node from a second 

5 node via the inter-network; 

6 determining an identifier of the network component; 

7 validating the identifier, validating the identifier further including determining 

8 a range for the identifier, a wrap count for the identifier, and an age limit for the 

9 identifier; 

10 determining whether the network component was exactly one of (1) 

1 1 forwarded in its entirety by the second node to the first node and (2) forwarded in 

12 the form of the identifier by the second node to the first node. 

1 13, The method of claim 12, further comprising: 

2 if the network component was forwarded in its entirety, recursively 

3 validating one or more subcomponents of the network component. 
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1 14. The method of claim 13, wherein recursively validating the one or more 

2 subcomponents further includes validating a format for each of the plurality of 

3 subcomponents. 

1 15. The method of claim 14, wherein recursively validating the one or more 

2 subcomponents further includes validating a syntax for each of the plurality of 

3 subcomponents. 

1 16. The method of claim 1 5, wherein the syntax is at least partially specified by 

2 the network protocol. 

1 17. The method claim 1 5, further comprising: 

2 if a subcomponent from the plurality of subcomponents is invalid, indicating 

3 invalidity of the subcomponent to a security daemon in the network protocol. 

1 18. The method of claim 14, further comprising determining if the network 

2 component has been retransmitted. 

1 1 9. The method of claim 1 5, further comprising: 

2 upon recursively validating the one or more subcomponents, resetting an 

3 aging time for the network component. 

1 20. The method of claim 1 6, further comprising: 

2 upon recursively validating the one or more subcomponents, updating a 

3 wrap around processing of the sequential identifier. 

1 21. The method of claim 12, wherein the sequential identifier is monotonically 

2 increasing, modulo a wrap around limit for the subcomponent. 

1 22. The method of claim 13, wherein the network protocol is an EGP. 

1 23. The method of claim 22, wherein the EGP is a path vector protocol. 
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1 24. The method of claim 23, wherein the path vector protocol is a version of 

2 BGP. 

1 25. The method of claim 13, wherein the network protocol is a link state 

2 protocol. 

1 26. The method of claim 13, wherein the link state protocol is OSPF. 

1 27. The method of claim 13, wherein the link state protocol is IS-IS. 

1 28. A network component resident on an internetwork, the network component ^ 

2 representing a common message transmitted in the internetwork via a 

3 communications protocol, the network component comprising: 

4 a plurality of subcomponents arranged in a recursive hierarchy; 

5 an identifier for each subcomponent of the plurality of subcomponents, 

6 such that for each subcomponent, the identifier is monotonically increasing for 

7 each transmission of each subcomponent, modulo a wrap around limit, wherein 

8 the wrap around limit indicates a maximum possible value of the identifier; 

9 a transmission period for each respective subcomponent of the plurality of 

10 subcomponents, the transmission period designating a interval for retranslating 

11 the subcomponent in the internetwork, such that the respective subcomponent 

12 has transmission period less than or equal to a transmission period of one or more 

1 3 parent subcomponents from the plurality of subcomponents; 

14 wherein one or more nodes in the internetwork are operative to validate the 

15 plurality of subcomponents by reference to the identifier and wrap around limit of 

16 each of the plurality of subcomponents, and the one or mode nodes are operative 

17 to increment the identifier of each of the plurality of subcomponents upon 

18 retransmission. 
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1 29. The network component of claina 28, further including an aging limit, such 

2 that the one or more nodes are operative to reset the identifier if a current time 

3 exceeds or equals the aging limit. 

1 30. The network component of claim 28, wherein the communications protocol 

2 is an EGP. 

1 31. The network component of claim 30, wherein the EGP is a path vector 

2 protocol. 

1 32. The network component of claim 31, wherein the path vector protocol is 

2 BGP. 

1 33. The network component of claim 29, wherein the communications protocol 

2 is a link state protocol. 

1 34. The network component of claim 33, wherein the link state protocol is 

2 OSPF. 

1 35. The network component of claim 34, wherein the link state protocol is IS-IS. 

1 36. The network component of claim 29, wherein the one or more nodes are 

2 operative to reset an aging metric for each of the plurality of network components. 

1 37. A packet transmitted in an inter-network, the packet comprising: ui, 

2 a plurality of component blocks in the packet arranged in a recursive 

3 hierarchy; 

4 a first component block in the recursive hierarchy, the first component block 

5 including 

6 a first field indicating a rank of the first network component in the recursive 

7 hierarchy, 

8 a second field including a unique global identifier for the first component; 
9 
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10 wherein the first network component substitutes for a first data pattern which has 

1 1 previously traversed the inter-network, such that the first network component is 

12 substantially shorter than the first data pattern. 

1 38. The packet of claim 37. wherein the first data pattern encodes a message in 

2 an inter-network protocol. 

1 39. The packet of claim 38, wherein the inter-network protocol is a link state 

2 protocol. 

1 40. The packet of claim 39, wherein the link state protocol is IS-IS. 

1 41 . The packet of claim 39, wherein the link state protocol is a Shortest Path First 

2 protocol. 

1 42. The packet of claim 41. wherein the link state protocol is an Open Shortest 

2 Path First protocol. 

1 43. The packet of claim 38, wherein the inter-network protocol is a path vector 

2 protocol. 

1 44. The packet of claim 38, wherein the inter-network protocol is a distance vector 

2 protocol. 

1 45. The packet of claim 37, wherein the first data pattern encodes a series of 

2 parameters which appear frequently in packet headers communicated in the inter- 

3 network. 

1 46. The packet of claim 37, further comprising: 

2 a second component in the recursive hierarchy, the second component 

3 embedded in the first component, the second component substituting for a 

4 second data pattern which has previously traversed the inter-network. 
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1 47. The packet of claim 46 further comprising:a third field indicating a rank of 

2 the second network component in the recursive hierarchy, 

3 a fourth field including a unique global identifier for the second component. 

1 48. The packet of claim 47, wherein the rank of the second network component 

2 is lower than a rank of the first network component. 

1 49. A method of transmitting a packet in an inter-network, the packet including 

2 a plurality of components, each of the plurality of components comprising a block 

3 of packet information, the method comprising: 



4 at a first peer in the inter-network, receiving the packet: 

5 identifying a first component in the plurality of components, wherein the first 

6 component is encoded in a default format, such that the first peer is operative to 

7 decipher the default format, identifying the default format further including 

8 identifying a global format identifier for the default format, wherein the global 

9 format identifier for the default format is embedded in the first component; 

10 processing the first component at the first peer by reference to the default 

1 1 fonnat; 

12 detemiining a second fomnat encoded by the first component, such that the 

1 3 second format was not previously stored in the first peer; 

14 identifying a second component from the plurality of components, the 



15 second component recursively embedded in the first component, the second 

16 component compressing a block of network information frequently repeated in the 

17 inter-network, identifying the second component further including identifying a 

18 global format identifier for the second fonnat, wherein the global format identifier 

19 for the second format is embedded in the second component. 

20 decompressing the second component at the first peer by reference to the 

21 second format. 
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1 50. The method of claim 49, wherein the first and second peers are located in 

2 separate autonomous systems. 

1 51. The method of claim 50, wherein the first and second peers are in 

2 communication via an Exterior Gateway Protocol. 

1 52. The method of claim 51, wherein the Exterior Gateway Protocol is Border 

2 Gateway Protocol. 

1 53. The method of claim 49, wherein the first and second peers are in a single 

2 autonomous system. 

1 54. The method of claim 53, wherein the first and second peers are in 

2 communication via an Interior Gateway Protocol. 

1 55. The method of claim 49, wherein the first and second peers are in 

2 communication via a distance vector protocol. 

1 56. The method of claim 49, wherein the first and second peers are in 

2 communication via a link state protocol. 

1 57. The method of claim 49, wherein the first and second peers are in 

2 communication over one of the group consisting of RIP, OSPF, ISIS. 

1 58. The method of claim 49, further comprising: 

2 assigning a unique identifier for the second network component. 

1 59. The method of claim 58, wherein the unique identifier is monotonically 

2 increasing. 

1 60. The method of claim 59, further comprising: 

2 substituting the unique identifier of the second network component for the second 

3 network component in subsequent transmissions in the inter-network. 
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1 61. The method of claim 60, wherein the identifier of the second network 

2 component is significantly shorter the second network component itself. 

1 62. The method of claim 49, wherein the block of network information includes a 

2 parameters frequently transmitted in packet headers through the inter-network. 

1 63. A method of transmitting network information in a network, the method C 

2 comprising: 

3 identifying a pattem of network data frequently repeated within packets 

4 traversing the network; 

5 generating a packet component to substitute for the packet of network data, 

6 generating the packet component including generating a unique, monotonically 

7 increasing identifier for the packet component; 

8 transmitting the packet component embedded in a packet in the inter- 

9 network, wherein the packet component substitutes for the pattern of network 

10 data; 

11 in place of the packet component, subsequently transmitting only the 

12 unique identifier to substitute for the pattem of network data, wherein the unique 

1 3 identifier is substantially shorter than the packet component. 

1 64. The method of claim 63, wherein the network is a local area network. 

1 65. The method of claim 63, wherein the network is an autonomous system. 

1 66. The method of claim 63, wherein the network is an inter-network. 

1 67. The method of claim 63, wherein the pattern of network data includes routing 

2 Information. 

1 68. The method of claim 67, wherein the routing information includes parameters 

2 in a routing protocol. 

1 69. The method of claim 68, wherein the routing protocol is a link state protocol. 
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1 70. The method of claim 68, wherein the routing protocol is a distance vector 

2 protocol. 

1 71 . The method of claim 68, wherein the routing protocol is a path vector protocol. 

1 72. The method of claim 63, wherein the pattern of network data includes 

2 information from a network security application. 

1 73. The method of claim 72, wherein the network security application is a firewall. 

1 74. The method of claim 72, wherein the network security application is a virtual 

2 private network (VPN) application. 

1 75. The method of claim 38, wherein the VPN application is an IPSec application. 

1 76. The method of claim 72, wherein the network security application is a Secure 

2 Socket Layer application. 

1 77. The method of claim 63, wherein the pattem of network data includes 

2 information from a network monitoring application. 

1 78. The method of claim 77, wherein the network monitoring application is based 

2 on Simple Network Monitoring Protocol. 

1 79. The method of claim 63, wherein the pattern of network data includes 

2 information encoded in a communications protocol. 

1 80. The method of claim 79, wherein the communications protocol is Simple 

2 Object Access Protocol. 

1 81. The method of claim 79, wherein the communications protocol is a Common 

2 Object Request Broker Application. 

1 82 . The method of claim 63, wherein the pattern of network data is encoded in 

2 XML. 
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